<?php

/**
 * UserIdentity represents the data needed to identity a user.
 * It contains the authentication method that checks if the provided
 * data can identity the user.
 */
class UserIdentity extends CUserIdentity
{
	/**
	 * Authenticates a user.
	 * The example implementation makes sure if the username and password
	 * are both 'demo'.
	 * In practical applications, this should be changed to authenticate
	 * against some persistent user identity storage (e.g. database).
	 * @return boolean whether authentication succeeds.
	 */
	public function authenticate()
	{
		$user=User::model()->active()->findByAttributes(array('username'=>$this->username));
		if($user==NULL){
			// user is not found in the database
			$this->errorCode=self::ERROR_USERNAME_INVALID;
		}else{
			$hashedPassword=Yii::app()->user->digest($this->password,$this->username);
			if($user->password!==$hashedPassword){
				// the password does not match
				$this->errorCode=self::ERROR_PASSWORD_INVALID;
			}else{
				// the login is valid
				// check if user has any access to any organization
				$this->setState('id', $user->id);
				$this->errorCode=self::ERROR_NONE;
			}
		}
		return !$this->errorCode;
	}	
	/**
	 * @return integer the ID of the user record
	 */
	public function getId()
	{
		return $this->getState('id');
	}
}